Senior Open-Source Intelligence Analyst

Location

Virginia

Posted

16 hours ago

Salary

$130K - $140K / year

Seniority

Senior

Bachelor DegreeSQLPythonR

Job Description

Senior Open-Source Intelligence Analyst

AMS Staffing

Title: Senior Open-Source Intelligence Analyst- 3626941 Location: Rosslyn, Virginia, United States Job Description: Salary/Payrate: $130K-$140K annually W2 and AWESOME benefits!!! Work Environment: Hybrid (#1 of days WFH) Term: Contract 12+ month with possible opportunity of conversion Bachelor’s degree required: Yes Referral Fee: AMS will pay $500 should the person you refer gets hired Job Description: Our federal client is looking to hire a Senior Open-Source Intelligence Analyst at their offices in Rosslyn, VA 22209. This is a long-term (12 months, renewable) contract paying an annual salary of $130K to $140K (dependent on experience) on a W2 basis with full benefits and PTO. ***Due to the required clearance with our government client, only US Citizens, Green Card and Green Card EAD holders may be considered. Clearance requires that the candidates have resided in the US for the past five years. The selected candidate cannot have left the country for longer than 90 consecutive days and no more than 180 cumulative days*** Position Description Intelligence & Analytics - Identify, track, and monitor emerging fraud typologies across financial and operational channels using fraud and intelligence gathering expertise. - Conduct analysis of open sources to identify fraudulent communication channels and techniques, including, but not limited to forums, social media, dark/deep web, news media, public records, and geospatial data. - Build and maintain fraud indicators, risk scores, and watchlists using internal data and external intelligence sources. - Develop analytical queries, dashboards, and automated alerts to uncover anomalous patterns such as counterfeit documentation, suspicious claims activity, identity misuse, or operational irregularities. - Leverage open-source data and information to conduct link analysis to uncover fraud networks and schemes. Cross-Functional Collaborations - Produce high-quality intelligence products including threat assessments, trend analyses, profiles, timelines, and geo-based heat maps. - Partner with internal stakeholders to share intelligence, escalate issues, and support audit and investigative efforts. - Identify issues and trends based on severity, potential impact, and risk, ensuring proper documentation and evidentiary standards. Risk & Controls - Recommend and evaluate preventive, detective, and mitigative controls. - Monitor changes in policy, regulations, technology, and criminal trends to anticipate shifts in fraud risk. Reporting & Communication - Deliver timely, actionable reporting to leadership on trends, exposures, root causes, and mitigation opportunities. - Translate analytical findings into clear recommendations for non-technical stakeholders. - Prepare materials for audit, compliance, or law enforcement requests as needed. Position Requirements Primary Requirements - Proven ability to conduct open-source intelligence (OSINT) analysis to identify, track, and monitor emerging fraud typologies across financial and operational channels. - Experience building and maintaining fraud indicators, risk scores, and watchlists using internal data and external intelligence sources. - Proficiency developing analytical queries, dashboards, and automated alerts to uncover anomalous patterns (e.g., counterfeit documentation, suspicious claims activity, identity misuse, operational irregularities). - Ability to leverage open-source data to conduct link analysis and identify fraud networks and scheme interdependencies. - Ability to produce high-quality intelligence products (threat assessments, trend analyses, profiles, timelines, geo-based heat maps) with clear analytical rigor and defensible findings. - Track record partnering with internal stakeholders (audit, investigations, and data personnel) to share intelligence, escalate issues, and support audit/investigative efforts. - Demonstrated capability to deliver timely, actionable reporting to leadership, translating analytical findings into clear recommendations for non-technical stakeholders. Desired Knowledge, Skills, and Abilities (KSAs) - Robust knowledge of fraud schemes and typologies, regulatory frameworks, and fraud-detection methodologies. - Strong analytical skills and experience using key tools, such as Microsoft PowerBI, and other link and visualization tools. - Working knowledge of SQL and Python/R for data preparation, feature engineering, and anomaly detection. - Ability to translate operational observations into data insights. - Clear written and verbal communication tailored to non-technical audiences. - Excellent planning, organizational, and time management skills. Experience - Bachelor’s degree and at least 10 years of professional experience (preferred) as an open-source intelligence analyst and other related fields. - Professional certification (preferred), such as CFE, CIA, CISA, or similar.

Related Job Pages

More Threat Intelligence Specialist Jobs

Unisys logo

Digital Intelligence Analyst

Unisys

Using secure, reliable, advanced technology, Unisys provides clients in the commercial, government, and financial services industries with solutions to enhance

Role Description - Own Salesforce Data Cloud administration — building and activating audiences, troubleshooting issues, and driving ongoing platform optimization. - Safeguard marketing data quality by monitoring data flow across systems and resolving inconsistencies to keep platforms aligned. - Build dashboards and reports that turn campaign and business data into clear, actionable insights for stakeholders. - Partner with marketing teams to design and activate targeted audiences that power marketing programs. - Manage intent data platforms and vendor relationships, fulfilling audience requests and supporting campaign targeting with reliable data delivery. - Support marketing technology vendor evaluations and RFPs, helping select and manage tools that fit team needs. - Own the project management platform end-to-end — workflows, request forms, automations, routing rules, and user support. - Lead onboarding and training for marketing technology platforms, ensuring teams can use tools effectively and independently. - Act as subject matter expert on Salesforce Data Cloud, intent data platforms, and project management tools, fielding questions and troubleshooting issues. - Collaborate cross-functionally with marketing, operations, and technology teams to spot inefficiencies and implement scalable process improvements. - Shape the roadmap for platform enhancements and data capabilities, recommending upgrades that boost operational efficiency. Qualifications - BA/BS degree and 2-4 years’ relevant experience OR equivalent combination of education and experience. - 1-2 years’ experience with Salesforce. - Experience with Salesforce Data Cloud preferred. Benefits - Unlimited paid time off. - 401(k) match. - Comprehensive healthcare. - HSA matching. - Ongoing learning opportunities. - Commitment to supporting work-life balance and investing in your future success.

United States
Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Investigate and attribute activity across the crypto-services ecosystem, connecting on-chain activity to real-world entities. • Proactively surface what’s worth investigating — and the automation worth building. • Build and tune AI workflows that scale your analysis — and handle the edge cases automation can’t. • Drive the data collection and research that keep our attribution comprehensive and fresh. • Hold a high bar for accuracy, analytic rigor, and documentation. • Become a certified cryptocurrency professional across all Chainalysis certifications.

North Carolina
$90K - $160K / year
Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Own attribution for the most complex, high-stakes parts of the ecosystem, and set the standard for how it’s done. • Design and lead the AI/automation that scales attribution across the team. • Shape collection strategy — what data we need and how we get it. • Mentor analysts and raise the team’s tradecraft. • Contribute analyses and insights that feed our products and customers. • Become a certified cryptocurrency professional across all Chainalysis certifications.

North Carolina
$100K - $184K / year

Sr. Analyst, Cyber Threat Intelligence

Wyndham Hotels & Resorts

Wyndham Hotels & Resorts is one of the world’s largest hotel franchising companies, with more than 9,000 hotels across over 95 countries. Headquartered in Par

Role Description As a member of the Cybersecurity Team, you will be responsible for supporting the cyber threat intelligence program mission, architecture and operation. Successful execution of this program results in the delivery of crucial guidance to a variety of Wyndham teams across various disciplines. The key tenant of this position revolves around research on threat actors and campaigns targeting hotel chains, travel industry partner technologies, and the broader hospitality and retail sectors. The output of that research will be in the production of timely, actionable analysis and recommendations while remaining sensitive to changing business requirements from stakeholders. The individual selected for this role must have experience performing technical analysis of malware, phishing infrastructure, and attacker tooling to extract indicators, TTPs, and other potential attribution signals. This position will involve being deeply informed of commodity cybercrime threats, retail and hospitality specific fraud types, emerging vulnerabilities, and intimate knowledge of various malware families and threat actor tradecraft tooling. What you'll do - Perform regular threat intelligence research into cybercrime and nation state threat actor tradecraft and produce threat intelligence products and profiles based on defined intelligence requirements for selected stakeholders. Some of these products will be expected to be automated with human-review. - Support the planning and maintenance of tooling and automated pipelines to collect, enrich, correlate, and operationalize all-source intelligence into our detection and reporting stack. - Assist in the triage and review of security events by analyzing malicious artifacts gathered from forensic workflows using static and dynamic analysis techniques. - Apply knowledge of in-the-wild threats and TTPs to provide intelligence context for Security Operations and Detection Engineering personnel during triage and incident response operations. - Work alongside peers involved in Detection Engineering and Incident Response to translate intelligence into applicable detection rules, hunting hypotheses, red team and detection validation scenarios and inform incident context. - Build and maintain external intelligence-sharing relationships with peer organizations, RH-ISAC, and other select partners. Attend conferences, vendor Technical or Customer Advisory Boards and other industry events virtually or in-person. Qualifications - 3+ years of hands-on experience in cyber threat intelligence, threat hunting, intrusion analysis or incident response at an organization facing sophisticated cybercrime adversaries. - Not afraid to bring new ideas to the table and challenge the status quo. - A passion for cybersecurity, someone who enjoys reading industry news or listening to podcasts. - A strong engineering background, you have built computers, managed networks and maybe even coded a few tools yourself. - A strong foundation in network security, vulnerability exploitation concepts, and technical threat analysis. - Experience with Threat Intelligence Platforms (TIPs) and a working knowledge of technologies for intelligence integration. - Experience with leveraging the MITRE ATT&CK, MITRE D3FEND, CTI-CMM, Cyber Kill Chain, and other relevant security frameworks. - Demonstrate organized, focused research habits, know how to leverage various internet tools to find what you need to know. - Comfortable performing malware analysis, infrastructure analysis, OSINT, and log analysis to develop and validate findings. - Ability to break down complex and technical ideas for a non-technical audience. - Formal technical writing skills and personal experience producing finished deliverables for senior leadership. - Comfortable speaking in front of large audiences and leading calls. - Ability to multi-task and manage time is a must. - Have an existing network in the threat intelligence community and a track record of productive bidirectional sharing. Requirements - Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field preferred but not required. - Certifications (SANS, COMPTIA, ISC2 etc) preferred, not required. Benefits - Health insurance with HSA and FSA options - Dental insurance - Vision insurance - Life/AD&D insurance - Short- and Long-Term Disability coverage - 401(k) with generous company match - Vacation time - Accrue 1.615 hours of paid vacation per week - Paid holidays - 11 Core Scheduled Paid Holidays with potential additional paid days off - Paid sick leave accrued as state and local laws require - Additional paid time off in the form of one volunteer day, bereavement time, as well as jury duty time.

United States
$110K - $135K / year